Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid resizing to a partial cluster size This patch avoids an attempt to resize the filesystem to an unaligned cluster boundary. An online resize to a size that is not integral to cluster size results in the last iteration attempting to grow the fs by a negative amount, which trips a BUG_ON and leaves the fs with a corrupted in-memory superblock.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 4.9.326 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/0082e99a9074ff88eff729c70c93454c8588d8e1Patch
- https://git.kernel.org/stable/c/69cb8e9d8cd97cdf5e293b26d70a9dee3e35e6bdPatch
- https://git.kernel.org/stable/c/72b850a2a996f72541172e7cf686d54a2b29bcd8Patch
- https://git.kernel.org/stable/c/7bdfb01fc5f6b3696728aeb527c50386e0ee09a1Patch
- https://git.kernel.org/stable/c/80288883294c5b4ed18bae0d8bd9c4a12f297074Patch
- https://git.kernel.org/stable/c/a6805b3dcf5cd41f2ae3a03dca43411135b99849Patch
FAQ
What is CVE-2022-50020?
CVE-2022-50020 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: ext4: avoid resizing to a partial cluster size This patch avoids an attempt to resize the filesystem to an unaligned cluster bound...
How severe is CVE-2022-50020?
CVE-2022-50020 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-50020?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.